1. Home
  2. CVE Database
  3. CVE-2019-9161
CRITICAL · 9.8

CVE-2019-9161

WAC on the Sangfor Sundray WLAN Controller version 3.7.4.2 and earlier has a Remote Code Execution issue allowing remote attackers to achieve full access to the system, because shell metacharacters in...

Vulnerability Description

WAC on the Sangfor Sundray WLAN Controller version 3.7.4.2 and earlier has a Remote Code Execution issue allowing remote attackers to achieve full access to the system, because shell metacharacters in the nginx_webconsole.php Cookie header can be used to read an etc/config/wac/wns_cfg_admin_detail.xml file containing the admin password. (The password for root is the WebUI admin password concatenated with a static string.)

CVSS Score

9.8

CRITICAL

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
XinruidzSundray Wan Controller Firmware<= 3.7.4.2
XinruidzSundray Wan Controller-

Related Weaknesses (CWE)

CWE-78

References

FAQ

What is CVE-2019-9161?

CVE-2019-9161 is a vulnerability with a CVSS score of 9.8 (CRITICAL). WAC on the Sangfor Sundray WLAN Controller version 3.7.4.2 and earlier has a Remote Code Execution issue allowing remote attackers to achieve full access to the system, because shell metacharacters in...

How severe is CVE-2019-9161?

CVE-2019-9161 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2019-9161?

Check the references section above for vendor advisories and patch information. Affected products include: Xinruidz Sundray Wan Controller Firmware, Xinruidz Sundray Wan Controller.